aboutsummaryrefslogtreecommitdiffstats
path: root/.github/workflows/coverity-scan.yml
blob: ac36354051c42c51143eca15b73ab95681cbd6a3 (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57

name: Coverity Scan Linux Qt 5.9
on:
  schedule:
    - cron: '0 18 * * *' # Daily at 18:00 UTC

jobs:
  CoverityScanBuildOnBionic:
    runs-on: ubuntu-18.04
    container:
      image: ubuntu:18.04 # yes, this looks redundant, but something is messed up with their Ubuntu image that causes our builds to fail

    steps:
    - name: checkout sources
      uses: actions/checkout@v1

    - name: add build dependencies
      run: |
        apt update
        apt install -y \
        autoconf automake cmake g++ git libcrypto++-dev libcurl4-gnutls-dev \
        libgit2-dev libqt5qml5 libqt5quick5 libqt5svg5-dev \
        libqt5webkit5-dev libsqlite3-dev libssh2-1-dev libssl-dev libssl-dev \
        libtool libusb-1.0-0-dev libxml2-dev libxslt1-dev libzip-dev make \
        pkg-config qml-module-qtlocation qml-module-qtpositioning \
        qml-module-qtquick2 qt5-default qt5-qmake qtchooser qtconnectivity5-dev \
        qtdeclarative5-dev qtdeclarative5-private-dev qtlocation5-dev \
        qtpositioning5-dev qtscript5-dev qttools5-dev qttools5-dev-tools \
        qtquickcontrols2-5-dev wget curl

    - name: Download Coverity Build Tool
      run: |
        cd ..
        wget -q https://scan.coverity.com/download/cxx/linux64 --post-data "token=$TOKEN&project=Subsurface-divelog%2Fsubsurface" -O cov-analysis-linux64.tar.gz
        mkdir cov-analysis-linux64
        tar xzf cov-analysis-linux64.tar.gz --strip 1 -C cov-analysis-linux64
      env:
        TOKEN: ${{ secrets.COVERITY_SCAN_TOKEN }}

    - name: run build
      run: |
        cd ..
        export PATH=`pwd`/cov-analysis-linux64/bin:$PATH
        cov-build --dir cov-int bash -x subsurface/scripts/build.sh -desktop -build-with-webkit

    - name: Submit the result to Coverity Scan
      run: |
        cd ..
        tar czvf subsurface.tgz cov-int
        curl \
          --form token=$TOKEN \
          --form email=glance@acc.umu.se \
          --form file=@subsurface.tgz \
          --form version=$(/scripts/get-version linux) \
          --form description="Automatic scan on github actions" \
          https://scan.coverity.com/builds?project=Subsurface-divelog%2Fsubsurface
      env:
        TOKEN: ${{ secrets.COVERITY_SCAN_TOKEN }}
generated by cgit v1.2.3-70-g09d2 (git 2.47.0) at 2024-12-26 18:24:13 +0000